V2.9.1 Cryptographic authentication mechanism, protection against disclosure is not relevant #2463
Labels
4) proposal for review
Issue contains clear proposal for add/change something
V2
_5.0 - prep
This needs to be addressed to prepare 5.0
Comments
randomstuff
changed the title
tghosth
added
1) Discussion ongoing
|
Looks like the original NIST requirement was misinterpreted: I would suggest: "[MODIFIED, LEVEL L2 > L3] Verify that the authentication server stores the cryptographic keys used in verification such that they are protected against modification (and for symmetric keys, against disclosure). This could involve using a Trusted Platform Module (TPM), a Hardware Security Module (HSM), or an OS service that can provide this secure storage." |
tghosth
added
4) proposal for review
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Current 2.9.1 (talking about smart cards, FIDO devices):
On the authentication server, these credentials are actually public keys. It is therefore not that important to protect them against disclosure. You would not need to store a public key in a TPM or HSM for this usage.
For smart card, these are actually X.509 certificates and protecting them agaisnt disclosure often does not make sense at all.
If I understand this requirement correctly, I think it is not needed.
The text was updated successfully, but these errors were encountered: